On Wed, Dec 13, 2017 at 01:30:52PM -0800, Guenter Roeck wrote:
Hi Greg,
I am looking into fixing CVE-2017-12190 in chromeos-4.4. The fix requires two patches, 95d78c28b5a85 ("fix unbalanced page refcounting in bio_map_user_iov") and 2b04e8f6bbb1 ("more bio_map_user_iov() leak fixes"). I noticed that the second patch has not been applied to linux-4.4.y. Is that due to the conflict, or was there a conscious decision not to apply it ?
On a side note, is there a working archive for stable@vger.kernel.org ? The one listed at vger.kernel.org (gmane) doesn't work.
Never mind, the list archive is at http://www.spinics.net/lists/stable/, and the patch wasn't applied due to a conflict [1]. I'll prepare a patch.
Guenter